| 基于分层对象化RBAC的设计与实现 |
| |
| 引用本文: | 王建军,李新国. 基于分层对象化RBAC的设计与实现[J]. 计算机工程与设计, 2007, 28(9): 2012-2014 |
| |
| 作者姓名: | 王建军 李新国 |
| |
| 作者单位: | 湖南第一师范专科学校,信息系,湖南,长沙,410002;湖南第一师范专科学校,信息系,湖南,长沙,410002 |
| |
| 摘 要: | 安全内核的功能是维护系统内部信息的安全.通常是根据不同的安全需求,在安全内核中实施不同的安全策略.RBAC是一种能够满足系统多方面安全需求的访问控制机制.传统RBAC在改变角色的操作集合时,易与外部应用程序发生冲突.通过把访问系统内部信息的操作对象化,并作为角色分派给应用程序,在对象化的操作和应用程序之间派生出一个角色权限检查对象,灵活地实施分层对象技术,能够克服传统RBAC的不足,使RBAC的安全策略能够任意改变.
|
| 关 键 词: | 信息安全 安全内核 面向对象 分层技术 基于角色访问控制 |
| 文章编号: | 1000-7024(2007)09-2012-03 |
| 修稿时间: | 2006-04-19 |
Design and implementation of RBAC based model of object hierarchy |
| |
| WANG Jian-jun,LI Xin-guo. Design and implementation of RBAC based model of object hierarchy[J]. Computer Engineering and Design, 2007, 28(9): 2012-2014 |
| |
| Authors: | WANG Jian-jun LI Xin-guo |
| |
| Affiliation: | Department of Information Science and Technology, First Normal College ofHunan, Changsha 410002, China |
| |
| Abstract: | Function of security kernel is to maintain security of information inside system. Security policy is implemented by using a module in security kernel usually by different security demand. RBAC is access control mechanism which can satisfy more security demand of system. But tradition RBAC can not easy change operate set of role, and would conflict with exterior application. Lack of traditional RBAC can be got over by objecting operation of information, and dispatch them to application as role, and implemented object hierarchy model. |
| |
| Keywords: | information security security kernel oriented object hierarchy technology RBAC |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
